Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/ciNkJRAoo1VX8HmzmWB8uJk9FAA.roa
File: ciNkJRAoo1VX8HmzmWB8uJk9FAA.roa (raw, json)
Hash identifier: tYbT81LHDOf0bf1NhPphAipsIYnVnxCyG7X2ao8EYPE=
Subject key identifier: 72:23:64:25:10:28:A3:55:57:F0:79:B3:99:60:7C:B8:99:3D:14:00
Certificate issuer: /CN=9a92d30708b9d4e8c7c28c97f8037c8027144c47
Certificate serial: 141FBF0E
Authority key identifier: 9A:92:D3:07:08:B9:D4:E8:C7:C2:8C:97:F8:03:7C:80:27:14:4C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpLTBwi51OjHwoyX-AN8gCcUTEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/ciNkJRAoo1VX8HmzmWB8uJk9FAA.roa
Signing time: Tue 29 Mar 2022 07:14:41 +0000
ROA not before: Tue 29 Mar 2022 07:14:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29170
IP address blocks: 185.67.177.201/32 maxlen: 32
178.132.216.0/24 maxlen: 24
82.114.81.0/24 maxlen: 24
178.132.217.0/24 maxlen: 24
82.114.84.0/24 maxlen: 24
82.114.79.0/24 maxlen: 24
178.132.216.0/21 maxlen: 21
178.132.220.0/24 maxlen: 24
82.114.88.0/24 maxlen: 24
46.19.224.0/24 maxlen: 24
46.19.224.0/21 maxlen: 24
46.19.225.0/24 maxlen: 24
46.19.230.0/24 maxlen: 24
82.114.64.0/19 maxlen: 19
82.114.64.0/24 maxlen: 24
82.114.70.0/24 maxlen: 24
82.114.65.0/24 maxlen: 24
82.114.66.0/24 maxlen: 24
82.114.74.0/24 maxlen: 24
82.114.77.0/24 maxlen: 24
82.114.78.0/24 maxlen: 24
185.67.176.0/22 maxlen: 22
185.67.176.0/24 maxlen: 24
185.67.177.0/24 maxlen: 24
185.67.178.0/24 maxlen: 24
185.67.179.0/24 maxlen: 24
185.67.177.175/32 maxlen: 32
185.190.132.0/22 maxlen: 22
185.190.132.0/24 maxlen: 24
185.67.177.176/32 maxlen: 32
2a04:3080::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337624846 (0x141fbf0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a92d30708b9d4e8c7c28c97f8037c8027144c47
Validity
Not Before: Mar 29 07:14:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=722364251028a35557f079b399607cb8993d1400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:24:2d:da:ed:c6:86:3f:a0:ed:1e:7b:53:6c:
5d:d7:aa:2b:22:c4:a3:25:de:58:01:64:05:7d:6a:
7b:66:f9:58:6c:5c:0f:64:80:17:2b:f9:27:1e:14:
39:cd:9d:69:dd:96:63:08:ee:5a:a0:5a:d1:de:8f:
8d:88:4a:3d:2a:8d:ff:28:88:d9:52:a8:e3:b8:30:
d7:e1:c8:5e:6b:31:e5:96:e3:f7:fb:fb:c8:da:a2:
c0:21:0a:c3:f0:32:84:7d:64:89:7b:c2:37:07:c1:
86:11:a3:40:29:aa:1d:c5:85:37:4e:2a:92:10:70:
54:9e:26:99:a0:36:eb:59:48:9a:7f:61:48:0e:11:
e6:50:47:44:d1:88:4c:6e:c7:c1:2b:06:6d:08:63:
66:2d:4c:54:17:6c:40:7b:e0:66:fc:ee:2c:d7:d8:
5f:93:ca:bb:fc:10:e7:bb:3e:79:17:25:62:a5:b1:
c6:04:01:92:44:8e:f7:f9:c0:29:d1:45:03:21:d4:
6f:79:1b:a4:29:fe:46:a2:57:bf:15:2d:6f:06:b2:
d1:88:ca:6a:77:61:93:e5:4f:a4:b6:94:04:2c:7e:
9f:a9:44:f7:2c:39:f4:e8:49:18:b7:90:95:2a:42:
08:22:6d:ee:d7:ee:57:f3:7f:fa:e0:3e:8f:ca:04:
9c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:23:64:25:10:28:A3:55:57:F0:79:B3:99:60:7C:B8:99:3D:14:00
X509v3 Authority Key Identifier:
keyid:9A:92:D3:07:08:B9:D4:E8:C7:C2:8C:97:F8:03:7C:80:27:14:4C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpLTBwi51OjHwoyX-AN8gCcUTEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/ciNkJRAoo1VX8HmzmWB8uJk9FAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c937be-f5b1-43c6-9587-4e06621bd98a/1/mpLTBwi51OjHwoyX-AN8gCcUTEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.224.0/21
82.114.64.0/19
178.132.216.0/21
185.67.176.0/22
185.190.132.0/22
IPv6:
2a04:3080::/29
Signature Algorithm: sha256WithRSAEncryption
15:07:13:4e:af:c9:b1:af:29:4b:e2:33:f7:e5:f3:30:8a:39:
3e:dc:43:37:13:bf:85:dd:92:cd:f7:8a:3d:2a:89:3b:68:83:
b1:d5:dd:00:d0:a4:aa:08:0b:82:11:b8:b9:23:2b:81:8a:fd:
1f:24:a7:7d:26:f7:0f:40:d6:55:eb:79:c6:68:b4:b9:57:05:
a1:76:8d:c8:99:3b:0b:5c:b0:31:88:4e:87:42:e7:8e:86:e1:
21:07:70:ef:4c:1a:20:35:73:69:ae:05:5a:f5:37:8b:77:62:
43:32:c2:ee:4d:4f:1d:06:72:4b:42:bf:ba:aa:f7:f8:24:f3:
19:3b:ed:1c:22:16:c9:b5:ec:94:5b:23:39:21:0e:a9:e5:24:
9c:e5:0c:3b:ec:46:47:c8:ce:05:81:ca:55:07:35:64:6a:28:
9b:76:db:75:62:bd:ad:49:89:e8:58:4c:27:34:24:3d:3c:68:
f9:70:05:9a:97:27:43:5e:25:58:0c:36:1d:e1:28:9c:d8:cf:
7f:b4:e4:2d:8e:7e:95:53:78:2d:17:3d:fa:72:b5:65:38:36:
df:78:85:1f:a9:53:17:40:e3:51:ac:1c:72:9e:45:08:49:0d:
0e:b3:2d:e6:ec:10:48:8a:f3:0f:4e:7f:a9:1a:aa:84:2b:f2:
bb:8d:62:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:12 2024 by rpki-client on console-fra.rpki-client.org